$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/5B92665E9ADD11ECA5401423C4F9AE02.roa File: 5B92665E9ADD11ECA5401423C4F9AE02.roa (raw, json) Hash identifier: lSLBriHRX11FONZNG/sRS79LEifS1Ktn8fDveXnQBko= Subject key identifier: 58:B4:1C:28:C8:5F:28:8A:CD:00:91:F4:8A:6C:D8:88:47:CC:03:EC Certificate issuer: /CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Certificate serial: 029E Authority key identifier: 90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/5B92665E9ADD11ECA5401423C4F9AE02.roa Signing time: Wed 03 Jan 2024 03:24:30 +0000 ROA not before: Wed 03 Jan 2024 03:24:30 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135885 IP address blocks: 103.229.1.0/24 maxlen: 24 2001:df4:5800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3A64/serialNumber=907BB262B571623E34B2E20C60A718C1739CC3BD Validity Not Before: Jan 3 03:24:30 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6594d36e-1ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:ca:05:ca:29:9f:99:3b:75:8f:cd:8d:eb:49: 43:85:3e:25:46:87:cf:e9:cf:97:52:3c:87:27:90: 56:d7:c9:94:f2:57:a3:9b:5f:bc:bd:60:e7:ff:ed: 46:eb:32:91:fd:c8:0b:16:c6:ad:4c:c0:a4:ea:b5: 18:d9:e9:cf:64:d6:22:d5:b0:89:ad:bc:ca:31:a0: a5:6d:a2:94:14:42:28:e7:6a:3d:b8:9f:ea:3c:0e: e4:05:11:8a:f9:7b:ec:c8:9b:6a:22:5e:17:f9:2a: a0:c7:26:07:55:83:15:fc:30:92:4b:30:d0:a4:1d: e1:8f:72:95:2e:5f:33:55:4e:1c:e7:f1:61:7b:1f: cb:51:a3:65:f8:39:4a:76:39:41:5a:91:09:f3:b3: 69:a7:28:bb:d6:1b:2c:a5:3b:d6:a0:b8:53:b0:eb: 4f:a8:10:34:d2:9f:b4:44:5a:17:75:e8:d2:ca:ea: cf:20:03:fd:75:b5:d6:49:c4:12:05:84:db:87:17: 59:6b:50:a8:5a:00:16:cc:51:ee:b4:13:ee:e5:04: 93:14:b5:ee:f9:3c:36:3c:83:14:dd:a6:0f:38:69: a7:85:8d:0e:d9:dc:89:1c:c6:5e:c6:bb:00:00:8a: 1b:59:52:1d:eb:1c:34:90:98:86:f2:26:6e:ba:48: 57:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B4:1C:28:C8:5F:28:8A:CD:00:91:F4:8A:6C:D8:88:47:CC:03:EC X509v3 Authority Key Identifier: keyid:90:7B:B2:62:B5:71:62:3E:34:B2:E2:0C:60:A7:18:C1:73:9C:C3:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/kHuyYrVxYj40suIMYKcYwXOcw70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHuyYrVxYj40suIMYKcYwXOcw70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3A64/358C67BE9ADA11EC85713378C4F9AE02/5B92665E9ADD11ECA5401423C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.1.0/24 IPv6: 2001:df4:5800::/48 Signature Algorithm: sha256WithRSAEncryption 1e:c5:d7:36:5e:4d:99:e2:c0:3d:99:28:3c:2e:cd:07:7f:d4: 2e:c5:14:ef:7b:77:a7:d2:4e:a6:e8:72:27:b2:04:f8:ac:e9: 8f:c1:31:e1:29:a1:35:2b:f8:0d:c7:ca:b1:d7:6f:c8:9b:db: 08:0d:a2:86:fc:16:a5:3e:70:b4:ed:5d:bb:2c:a9:a1:fa:f7: 42:63:ac:e0:18:dd:94:dd:ed:4d:9e:90:00:7d:94:0a:6a:eb: f9:fe:41:b2:ed:04:ca:b3:f4:fa:e8:e8:8f:dc:7a:6b:60:cc: 01:c6:92:c3:47:fa:33:04:42:80:4b:60:38:d6:58:e2:23:0d: a1:1c:3c:2a:72:b4:66:ce:c1:23:6c:b4:18:26:47:6d:f3:2b: 66:ed:bd:c8:21:42:e4:7e:c5:3b:8d:56:e5:4e:5a:df:28:ae: aa:ab:1d:5d:0c:ad:75:66:e6:84:4a:be:87:79:82:a2:06:66: 45:ae:08:a0:e9:f6:86:e4:c3:53:0a:3e:e6:d5:db:16:8b:03: 3a:50:80:a6:f3:d6:f7:fc:23:a4:ff:d8:ef:51:e2:4c:95:9c: dd:87:8d:cb:b1:55:d6:e9:34:ff:58:5f:b7:7e:04:8d:ce:64: 3c:82:bd:42:2d:73:b5:19:56:7d:91:ba:a4:c1:e7:ea:13:0b: 99:45:be:be -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBNjQxMTAvBgNVBAUTKDkwN0JCMjYyQjU3MTYyM0UzNEIyRTIwQzYwQTcxOEMx NzM5Q0MzQkQwHhcNMjQwMTAzMDMyNDMwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0ZDM2ZS0xZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4coFyimfmTt1j82N60lDhT4lRofP6c+XUjyHJ5BW18mU8lejm1+8vWDn/+1G 6zKR/cgLFsatTMCk6rUY2enPZNYi1bCJrbzKMaClbaKUFEIo52o9uJ/qPA7kBRGK +XvsyJtqIl4X+SqgxyYHVYMV/DCSSzDQpB3hj3KVLl8zVU4c5/Fhex/LUaNl+DlK djlBWpEJ87Nppyi71hsspTvWoLhTsOtPqBA00p+0RFoXdejSyurPIAP9dbXWScQS BYTbhxdZa1CoWgAWzFHutBPu5QSTFLXu+Tw2PIMU3aYPOGmnhY0O2dyJHMZexrsA AIobWVId6xw0kJiG8iZuukhXNQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFi0HCjI XyiKzQCR9Ips2IhHzAPsMB8GA1UdIwQYMBaAFJB7smK1cWI+NLLiDGCnGMFznMO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0E2NC8zNThDNjdCRTlB REExMUVDODU3MTMzNzhDNEY5QUUwMi9rSHV5WXJWeFlqNDBzdUlNWUtjWXdYT2N3 NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIdXlZclZ4WWo0MHN1SU1ZS2NZd1hPY3c3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNBNjQvMzU4QzY3QkU5QURBMTFFQzg1NzEzMzc4QzRGOUFFMDIvNUI5MjY2NUU5 QUREMTFFQ0E1NDAxNDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn5QEwDwQCAAIwCQMHACABDfRYADANBgkqhkiG9w0BAQsF AAOCAQEAHsXXNl5NmeLAPZkoPC7NB3/ULsUU73t3p9JOpuhyJ7IE+Kzpj8Ex4Smh NSv4DcfKsddvyJvbCA2ihvwWpT5wtO1duyypofr3QmOs4BjdlN3tTZ6QAH2UCmrr +f5Bsu0EyrP0+ujoj9x6a2DMAcaSw0f6MwRCgEtgONZY4iMNoRw8KnK0Zs7BI2y0 GCZHbfMrZu29yCFC5H7FO41W5U5a3yiuqqsdXQytdWbmhEq+h3mCogZmRa4IoOn2 huTDUwo+5tXbFosDOlCApvPW9/wjpP/Y71HiTJWc3YeNy7FV1uk0/1hft34Ejc5k PIK9Qi1ztRlWfZG6pMHn6hMLmUW+vg== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:27 2024 by rpki-client on console-ams.rpki-client.org